3

NextDns Apple Configuration profile issue on iOS 17

I have excluded my home network in the configuration yet dns queries are being routed through my home WiFi. This was not the case prior to iOS 17 update. I have to now manually set Dns to Automatic to use my home dns and when I move to mobile data I have to change from automatic to NextDns. On my home network I have blocked all external DNS server access hence if I don’t change it to automatic my device internet breaks. Please look into this issue and get it fixed

10 replies

null
    • Secretary_Holly
    • 6 mths ago
    • Reported - view

    I can replicate this. https://apple.nextdns.io/ is *broken* against iOS17/MacOS Sonoma (and other OS's which I haven't yet tested).

     

    Wi-Fi and Excluded Domains are NOT honoured using the profile creation tool. 

      • Will_Tisdale
      • 6 mths ago
      • Reported - view

      - I was having this issue with macOS 14 - I found that if you remove the following from the apple.nextdns.io generated profile it works as expected:

                <dict>
            <key>Action</key>
            <string>EvaluateConnection</string>
            <key>ActionParameters</key>
            <array>
              <dict>
                <key>DomainAction</key>
                <string>NeverConnect</string>
                <key>Domains</key>
                <array>
                  <string>dav.orange.fr</string>
                  <string>msg.t-mobile.com</string>
                </array>
              </dict>
            </array>
          </dict>
      • Michael_Bierman
      • 6 mths ago
      • Reported - view

       Remove how? I don't see anything like this when I open in Apple Configurator. 

      • Will_Tisdale
      • 6 mths ago
      • Reported - view

       a text editor. Make sure the profile is unsigned though.

    • Michael.11
    • 6 mths ago
    • Reported - view

    Came here to say the exact thing. Local DNS is never used despite both the domain + SSID being excluded on iOS 17. Wife’s phone that is using an older configuration file is still working no problems. 

    • Michael.11
    • 6 mths ago
    • Reported - view

    See fix here: https://help.nextdns.io/t/x2yht8m/ssid-exclusions-are-not-working-in-apple-configuration-profiles

    Appears there is a portion added that breaks SSID / Domain matching for some reason. Downloading the unsigned configuration and manually removing this block (then airdropping it to my iPhone) fixes it for me:

              <dict>
            <key>Action</key>
            <string>EvaluateConnection</string>
            <key>ActionParameters</key>
            <array>
              <dict>
                <key>DomainAction</key>
                <string>NeverConnect</string>
                <key>Domains</key>
                <array>
                  <string>dav.orange.fr</string>
                  <string>msg.t-mobile.com</string>
                </array>
              </dict>
            </array>
          </dict>
      • Ketul
      • 6 mths ago
      • Reported - view

       thanks for providing a much more tedious solution. It is always better to have signed profiles & not every user would know how to manually fix it using your solution :) the aim was to get it fixed for everyone

    • Secretary_Holly
    • 6 mths ago
    • Reported - view

    @NextDNS - why isn't this being a) acknowledged and b) fixed? You fixed another issue with the profile generator today, yet here we are..and despite *11* fucking days going by you haven't even acknowledged it.

    Unacceptable to those who pay you for service. 

    • NextDNs
    • 6 mths ago
    • Reported - view

    This problem should now be fixed on https://apple.nextdns.io. Please try re-creating your profile.

      • Ketul
      • 6 mths ago
      • Reported - view

       Tested, Issue resolved. Thank you for resolving the issue. Appreciate it :)

Login to reply

Content aside

  • Status Fixed
  • 3 Likes
  • 6 mths agoLast active
  • 10Replies
  • 1071Views
  • 8 Following